SIMI: Secure Identity Management Infrastructure for the CSU A. Michael Berman, Cal Poly Pomona
Overview of Presentation What is the SIMI proposal for CSU? How did we get here? What happens next? A vision for the future
What is the SIMI Proposal for the CSU?
What is the SIMI proposal? A coordinated, system-wide effort to develop a Secure Identity Management Infrastructure A technology and policy infrastructure to support the secure, private, and reliable transactions related to the identities of individuals in the CSU system
Potential Technology Dimensions for SIMI Directories – LDAP and others Account provisioning and management Single sign-on (web sign-on) PKI Advanced authorization solutions, e.g. Shibboleth
Potential Policy Dimensions for SIMI Cross-campus policy rationalization Establishment of minimum standards, e.g. for account management Compliance with state & federal regulations related to identity information, e.g. GLB, SB1346
Potential Applications CMS support and enhancement Access to Library resources White pages Secure messaging Access to learning resources, e.g. on- line course cross-registration
Roles and Responsibilities of Campuses and “SIMI Central” Most of the work will take place on the campuses – much is happening now Role of proposed central organization: Coordination Communication Support Leverage Consulting
How Did We Get Here?
Activities of the ITAC Directories Working Group Multi-campus pilot CalStateEduPerson specification Middleware Steering Committee Appointed by David Ernst to develop recommendations Meetings with campus representatives, CMS Staff, CMS Project Directors, COLD representatives Discussions with Internet2, Educause, representatives from other systems, e.g. Maryland
Related Activities Internet2/NSF Middleware Initiative COLD – Pharos project CMS driving LDAP implementations
What Happens Next?
Status of the Proposal Recommendations transmitted to David Ernst in May Discussions currently underway in CO To be presented to the Technical Steering Committee (subcommittee of ExecCouncil) We expect that it will happen, even given the tight & uncertain budget environment
Proposal Details Three year project with proposed central budget of ~ $3 million Central coordinating staff of 2 high level technical staff, a project director, communications and documentation specialists and a support person Initial activity – develop CSU-wide LDAP directory
A Vision for the Future
Consider the potential… Approximately 500,000 individuals from 24 entities (campuses + CO) Millions of alumni Community Colleges High School Students CENIC’s “One Gigabit or Bust” initiative
Resources On my web site: SIMI proposal document in PDF format These slides (later today) Contact Info